# AWS Configuration
aws_region   = "us-east-1"
project_name = "aws-cf"
environment  = "dev"

# Origin Configuration
origin_domain = "origin.servidor.it.com"

# Domain Configuration
domain_name = "servidor.it.com"

# CloudFront Configuration
cloudfront_aliases = [
  "servidor.it.com",
  "www.servidor.it.com"
]

# Route53 Configuration
create_route53_records = true
certificate_domain_validation_options = "DNS"

# CloudFront Settings
price_class               = "PriceClass_100"  # PriceClass_All, PriceClass_200, PriceClass_100
origin_protocol_policy    = "https-only"      # http-only, https-only, match-viewer
viewer_protocol_policy    = "redirect-to-https" # allow-all, https-only, redirect-to-https

# Cache Policies (AWS Managed Policies)
cache_policy_id           = "4135ea2d-6df8-44a3-9df3-4b5a84be39ad" # CachingDisabled
origin_request_policy_id  = "88a5eaf4-2fd4-4709-b370-b4c650ea3fcf" # CORS-S3Origin

# Security Configuration
create_alb_security_group = false
create_web_security_group = false
enable_waf                = false

# SSH Access (if creating EC2 security groups)
ssh_allowed_cidrs = [
  "0.0.0.0/0" # Restrict this to your IP in production
]